Sorry in the event that you got spammed later yesterday, plainly those messages weren't ours. We’ve resolved the matter now.
— DWP Press Workplace (@dwppressoffice)
Remember the times once the web had been filled up with acai berries spam? It seems there’s a King around, going by the name of Garcinia Cambogia spam works. You’ve probably observed it appear on everything from Facebook and Twitter to Pinterest and Tumblr. It doesn’t matter if you’re the division of Work and Pensions press office, or a regular Twitter individual – every person is reasonable online game if you don’t maintain your account secured straight down:
Garcinia gummi-gutta is a subtropical species of Garcinia native to Indonesia. Common names include Garcinia Cambogia (a former scientific title), and gambooge, brindleberry, brindall berry, Malabar tamarind, assam fruit, vadakkan puli (northern tamarind) and kudam puli (pot tamarind). This fruit looks like a little pumpkin and is green to pale-yellow in color. Gambooge has received substantial news attention due to the purported impacts on fat reduction, though there is no medical research to support this claim.
Yes, it is called “Gambooge”.
It’s already been appearing on account compromises for a while today. Here’s a short schedule of Gambooge over the past couple of weeks, including the most recent outbreaks through the last couple of days, what’s taking place at this time also an interested perspective on a certain pair of the spam messages currently performing the rounds:
: A Twitter based junk e-mail attack that performedn’t appear to go so well, mainly because the connected site ended up being lacking additionally the Address in Tweets was damaged. Because of the style of URL and the message becoming delivered, it seems possible that this was an attempt at directing users to Garcinia internet sites.
Click to expand
June 28th: Garcinia spam and phony Twitter logins – most likely the explanation all of the hijacked records since happen swiped, as we’ve yet to see everything discussed about rogue / fake apps.
July 4th 2013: Spam seems on Game Informer blogs produced by the spammer. This appears less like a specific approach and much more like “If we post this nonsense on every site we encounter, a person will need the bait eventually”.
: Here we spam on both Twitter and Pinterest leading to a number of sites, like the ever-present diet spam together with relatively typical “browser study” which tries to modify itself towards style of web browser that you are using at the time.
: Fake BBC web sites are the order associated with the time, with several URLs and a variety of replica BBC pages ultimately causing promotions on…well, you’ve guessed it.
: With hardly a pause for air, the BBC spam pages leap from Twitter to Instagram causing honestly bizarre “Smoothie spam”. The final location matches the first fake BBC junk e-mail run, albeit with freshly registered URLs.
July 27th / 28th: some body eventually chooses to spam Tumblr utilizing the following misleading advertisement splash appearing in Ask bins. We’ve seen these doing the rounds over the past couple of days:
Note the tries to result in the message look as though its for some reason official (a standard ploy in which Tumblr frauds are worried) – the “Verified Invitation” at the top which claims the message is screened, the “Personal note from friend” nonsense as well as the underlining of word “Google” to keep up the pretence that everything here's safe and normal.
There are many shortened backlinks bouncing around Tumblr today – the main one above has actually 167 ticks currently but the tally will increase. It leads to a fake development website touting the many benefits of “Losing belly fat in 1 month with this particular diet cleanse that celebrities use”.
July 28th: Meanwhile, on Twitter:
That one is significantly unfocused, leading unwary clickers to sets from phony BBC websites plus some type of medical study “paper” to however much more phony Game Informer spam blogs:
Interestingly, they’re today also using expressions built to bring in those attempting to learn more about the spam attacks:
“More on “garcinia cambogia” diet drug #spam on Twitter, Facebook, Pinterest, and Tumblr”
The aforementioned links trigger more artificial development websites. The theory is that, they might potentially booby-trap those URLs to guide to Malware or something else more nasty than “diet spam” so please be alert.